[Bug 586112] New: Sax2 fails with buffer overflow message
http://bugzilla.novell.com/show_bug.cgi?id=586112 http://bugzilla.novell.com/show_bug.cgi?id=586112#c0 Summary: Sax2 fails with buffer overflow message Classification: openSUSE Product: openSUSE 11.3 Version: Factory Platform: x86-64 OS/Version: openSUSE 11.3 Status: NEW Severity: Major Priority: P5 - None Component: SaX2 AssignedTo: bnc-team-xorg-bugs@forge.provo.novell.com ReportedBy: linxt@comcast.net QAContact: sax2-maintainer-bugs@forge.provo.novell.com Found By: --- Blocker: --- Created an attachment (id=346975) --> (http://bugzilla.novell.com/attachment.cgi?id=346975) copies of log files and error message User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.0) Gecko/20100115 SUSE/3.6.0-1.8 Firefox/3.6 Attempted to run Sax2 from start menu. Root prompt popup asked for password. Supplied password and Sax2 started to load going to blank screen with suse icon in upper left corner and blinking cursor near lower left corner spinning. After some time, pressed enter and root login console appeared. Tried to run Sax2 from console resulted in same behaviour as above. Tried to run Sax2 in a root terminal resulted in an error message about buffer overflow and two files (devices) not found. See attached error report. Dell Studio 1745, Intel Mobile GM45 express chipset, Intel Mobile 4 series graphic controller, MC13K173WD1 lcd monitor, 4GB RAM Reproducible: Always Steps to Reproduce: 1.Attempt to run Sax2 from either start menu or root terminal 2.Provide root password 3.Sax2 fails with attached error message Actual Results: Sax2 fails to start claiming buffer overflow Expected Results: Sax2 to start and reconfigure display resolution -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=586112
http://bugzilla.novell.com/show_bug.cgi?id=586112#c1
Stefan Dirsch
http://bugzilla.novell.com/show_bug.cgi?id=586112
http://bugzilla.novell.com/show_bug.cgi?id=586112#c2
--- Comment #2 from Stefan Dirsch
http://bugzilla.novell.com/show_bug.cgi?id=586112
http://bugzilla.novell.com/show_bug.cgi?id=586112#c3
--- Comment #3 from Stefan Dirsch
http://bugzilla.novell.com/show_bug.cgi?id=586112
http://bugzilla.novell.com/show_bug.cgi?id=586112#c4
Stefan Dirsch
http://bugzilla.novell.com/show_bug.cgi?id=586112
http://bugzilla.novell.com/show_bug.cgi?id=586112#c5
Stefan Dirsch
http://bugzilla.novell.com/show_bug.cgi?id=586112
http://bugzilla.novell.com/show_bug.cgi?id=586112#c6
Ruediger Oertel
http://bugzilla.novell.com/show_bug.cgi?id=586112
http://bugzilla.novell.com/show_bug.cgi?id=586112#c7
--- Comment #7 from Ruediger Oertel
http://bugzilla.novell.com/show_bug.cgi?id=586112
http://bugzilla.novell.com/show_bug.cgi?id=586112#c
Stefan Dirsch
http://bugzilla.novell.com/show_bug.cgi?id=586112
http://bugzilla.novell.com/show_bug.cgi?id=586112#c8
--- Comment #8 from Stefan Dirsch
but I don't get too much further there since libxf86config is broken (mail sent to xorg-devel)
http://lists.x.org/archives/xorg-devel/2010-April/006869.html -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=586112
http://bugzilla.novell.com/show_bug.cgi?id=586112#c9
--- Comment #9 from Ruediger Oertel
http://bugzilla.novell.com/show_bug.cgi?id=586112
http://bugzilla.novell.com/show_bug.cgi?id=586112#c10
--- Comment #10 from Ruediger Oertel
http://bugzilla.novell.com/show_bug.cgi?id=586112
http://bugzilla.novell.com/show_bug.cgi?id=586112#c11
--- Comment #11 from Stefan Dirsch
http://bugzilla.novell.com/show_bug.cgi?id=586112
http://bugzilla.novell.com/show_bug.cgi?id=586112#c12
--- Comment #12 from Ruediger Oertel
http://bugzilla.novell.com/show_bug.cgi?id=586112
http://bugzilla.novell.com/show_bug.cgi?id=586112#c
Stefan Dirsch
http://bugzilla.novell.com/show_bug.cgi?id=586112
http://bugzilla.novell.com/show_bug.cgi?id=586112#c13
Stefan Dirsch
but I don't get too much further there since libxf86config is broken (mail sent to xorg-devel)
Fixed/workarounded in xorg-x11-server now: ------------------------------------------------------------------- Tue Apr 6 20:48:21 CEST 2010 - ro@suse.de - fix libxf86config (resolve references) (In reply to comment #12)
yep, forgot that snprintf guarantees null-termination. looks good.
Fixed in sax2 now. ------------------------------------------------------------------- Wed Apr 7 00:02:38 CEST 2010 - sndirsch@suse.de - likely fixed buffer overflow in sysp (bnc #586112) -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com